APAR status
Closed as program error.
Error description
N/A
Local fix
N/A
Problem summary
A security vulnerability has been identified.
Problem conclusion
The Java Runtime Environment has been or will be updated to fix the problem described in CVE-2020-2654 at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2659. . This APAR will be fixed in the following Java Releases: 8 SR6 FP5 (8.0.6.6) 7 R1 SR4 FP60 (7.1.4.65) 7 SR10 FP60 (7.0.10.65) . Contact your IBM Product's Service Team for these Service Refreshes and Fix Packs. For those running stand-alone, information about the available Service Refreshes and Fix Packs can be found at: https://www.ibm.com/developerworks/java/jdk/
Temporary fix
Comments
APAR Information
APAR number
IJ22978
Reported component name
SECURITY
Reported component ID
620700125
Reported release
270
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2020-02-27
Closed date
2020-02-27
Last modified date
2020-02-27
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SECURITY
Fixed component ID
620700125
Applicable component levels
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"270","Edition":"","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
Document Information
Modified date:
07 December 2020